Graham/Kenneth, As suggested, I have created a custom chain and configured action.d/iptables-common.local for it. I am now monitoring to see if I still receive emails confirming fail2ban is working as before.
Thank you, S On Mon, 2019-08-26 at 11:37 +0100, Graham wrote: > On Sun, 25 Aug 2019, STR . wrote: > > > Date: Sun, 25 Aug 2019 09:36:27 > > From: STR . <[email protected]> > > To: "[email protected]" > > <[email protected]> > > Subject: [Fail2ban-users] Co-existing fail2ban with custom rules > > > > Hi, > > > > I have a few custom iptables rules that are loaded via a systemd > > service that reads from /etc/iptables/iptables.rules > > > [--- snipped ---] > > fail2ban flushes these rules whenever there is a new ban and I > > would > > like it to co-exist with my custom rules, how would I achieve this? > > > > > > Thanks, > > S > > Hello S, > > I found the same problem, which I solved by creating my own chain > ("droplist") from the INPUT table, and putting my rules in that > chain, leaving Fail2Ban to do its work without the risk of > interference. > > Hoping this helps, _______________________________________________ Fail2ban-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/fail2ban-users
